GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Language support
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,077
Erlang
29
GitHub Actions
19
Go
1,903
Maven
5,000+
npm
3,632
NuGet
638
pip
3,249
Pub
10
RubyGems
864
Rust
818
Swift
35
Unreviewed advisories
All unreviewed
5,000+
Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.
369 advisories
Filter by severity
A vulnerability in the file system permissions of Cisco IOS XE Software could allow an...
Moderate
Unreviewed
CVE-2020-3503
was published
May 24, 2022
Insufficient policy enforcement in Blink in Google Chrome prior to 85.0.4183.83 allowed a remote...
Moderate
Unreviewed
CVE-2020-6562
was published
May 24, 2022
Insufficient policy enforcement in iOSWeb in Google Chrome on iOS prior to 85.0.4183.83 allowed a...
Moderate
Unreviewed
CVE-2020-6558
was published
May 24, 2022
A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module, where a user with...
Moderate
Unreviewed
CVE-2020-10781
was published
May 24, 2022
The rbd block device driver in drivers/block/rbd.c in the Linux kernel through 5.8.9 used...
Moderate
Unreviewed
CVE-2020-25284
was published
May 24, 2022
A security feature bypass vulnerability exists when a Windows Projected Filesystem improperly...
Moderate
Unreviewed
CVE-2020-0805
was published
May 24, 2022
ForLogic Qualiex v1 and v3 allows any authenticated customer to achieve privilege escalation via...
Moderate
Unreviewed
CVE-2020-24028
was published
May 24, 2022
A vulnerability in the management consoles of Trend Micro Deep Security 10.0-12.0 and Trend Micro...
Moderate
Unreviewed
CVE-2020-8602
was published
May 24, 2022
OpenZFS before 2.0.0-rc1, when used on FreeBSD, allows execute permissions for all directories.
Moderate
Unreviewed
CVE-2020-24716
was published
May 24, 2022
Cloud Foundry CAPI (Cloud Controller), versions prior to 1.97.0, when used in a deployment where...
Moderate
Unreviewed
CVE-2020-5417
was published
May 24, 2022
Elementor 2.9.5 and below WordPress plugin allows authenticated users to activate its safe mode...
Moderate
Unreviewed
CVE-2020-20634
was published
May 24, 2022
In the Linux kernel before 5.7.8, fs/nfsd/vfs.c (in the NFS server) can set incorrect permissions...
Moderate
Unreviewed
CVE-2020-24394
was published
May 24, 2022
Insecure inherited permissions in some Intel(R) PROSet/Wireless WiFi products on Windows* 7 and 8...
Moderate
Unreviewed
CVE-2020-0559
was published
May 24, 2022
Some sensitive cookies in SAP Disclosure Management, version 10.1, are missing HttpOnly flag,...
Moderate
Unreviewed
CVE-2020-6267
was published
May 24, 2022
An issue was discovered in Mattermost Server before 5.8.0, 5.7.2, 5.6.5, and 4.10.7. Changes to e...
Moderate
Unreviewed
CVE-2019-20879
was published
May 24, 2022
An issue was discovered in Mattermost Server before 5.8.0. It allows attackers to partially...
Moderate
Unreviewed
CVE-2019-20884
was published
May 24, 2022
An issue was discovered in Mattermost Server before 5.7.1, 5.6.4, 5.5.3, and 4.10.6. It does not...
Moderate
Unreviewed
CVE-2019-20887
was published
May 24, 2022
An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows a...
Moderate
Unreviewed
CVE-2019-20875
was published
May 24, 2022
An issue was discovered in Mattermost Server before 5.10.0, 5.9.1, 5.8.2, and 4.10.9. A non...
Moderate
Unreviewed
CVE-2019-20869
was published
May 24, 2022
An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. Users can...
Moderate
Unreviewed
CVE-2019-20876
was published
May 24, 2022
An access issue was addressed with improved access restrictions. This issue is fixed in macOS...
Moderate
Unreviewed
CVE-2020-9851
was published
May 24, 2022
In Pydio Cells 2.0.4, once an authenticated user shares a file selecting the create a public link...
Moderate
Unreviewed
CVE-2020-12848
was published
May 24, 2022
An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce...
Moderate
Unreviewed
CVE-2020-1056
was published
May 24, 2022
An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardware Abstraction Sys...
Moderate
Unreviewed
CVE-2019-7246
was published
May 24, 2022
An issue was discovered in the "Ultimate Addons for Elementor" plugin before 1.24.2 for WordPress...
Moderate
Unreviewed
CVE-2020-13125
was published
May 24, 2022
ProTip!
Advisories are also available from the
GraphQL API